diff options
author | Sumit Bose <sbose@redhat.com> | 2010-02-23 09:43:51 +0100 |
---|---|---|
committer | Stephen Gallagher <sgallagh@redhat.com> | 2010-03-11 09:22:41 -0500 |
commit | 29752834fbf3a19e4e117668abfce4e4c7c48ee4 (patch) | |
tree | a39de5ce10404f2c8397a587db535c6ae795a8c7 /src/providers/krb5/krb5_auth.h | |
parent | 3ea37e96974387d57593dfb1010ee6974c7d9e1e (diff) | |
download | sssd-29752834fbf3a19e4e117668abfce4e4c7c48ee4.tar.gz sssd-29752834fbf3a19e4e117668abfce4e4c7c48ee4.tar.xz sssd-29752834fbf3a19e4e117668abfce4e4c7c48ee4.zip |
Add expandable sequences to krb5_ccachedir
As with krb5_ccname_template sequences like %u can be used in the
krb5_ccachedir parameter which are expanded at runtime. If the directory
does not exist, it will be created. Depending on the used sequences it
is created as a public or private directory.
Diffstat (limited to 'src/providers/krb5/krb5_auth.h')
-rw-r--r-- | src/providers/krb5/krb5_auth.h | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/src/providers/krb5/krb5_auth.h b/src/providers/krb5/krb5_auth.h index 3e11f2702..825f3d648 100644 --- a/src/providers/krb5/krb5_auth.h +++ b/src/providers/krb5/krb5_auth.h @@ -26,6 +26,8 @@ #ifndef __KRB5_AUTH_H__ #define __KRB5_AUTH_H__ +#include <pcre.h> + #include "util/sss_krb5.h" #include "providers/dp_backend.h" #include "providers/krb5/krb5_common.h" @@ -33,6 +35,8 @@ #define CCACHE_ENV_NAME "KRB5CCNAME" #define SSSD_KRB5_CHANGEPW_PRINCIPLE "SSSD_KRB5_CHANGEPW_PRINCIPLE" +#define ILLEGAL_PATH_PATTERN "//|/\\./|/\\.\\./" + typedef enum { INIT_PW, INIT_KT, RENEW, VALIDATE } action_type; struct krb5child_req { @@ -87,6 +91,8 @@ struct krb5_ctx { struct dp_option *opts; struct krb5_service *service; int child_debug_fd; + + pcre *illegal_path_re; }; void krb5_pam_handler(struct be_req *be_req); |